bisecting fixing commit since 47cbf4cc32db62f053c4cd04fc6ee39a0218139e building syzkaller on 40cc414d10dabacf34877f4902279729ca3bc011 testing commit 47cbf4cc32db62f053c4cd04fc6ee39a0218139e with gcc (GCC) 8.1.0 kernel signature: 989d67e6e6421911e4fcb9473350f27ceae15b31bfb50c67c5554b0ebb140b36 all runs: crashed: BUG: corrupted list in dquot_disable testing current HEAD 1752938529c614a8ed4432ecce6ebc95d3b87207 testing commit 1752938529c614a8ed4432ecce6ebc95d3b87207 with gcc (GCC) 8.1.0 kernel signature: e59e122ad21313a99164303f3b5ae05b88a34347e4641473dc7ec9d6e2e4fd23 all runs: OK # git bisect start 1752938529c614a8ed4432ecce6ebc95d3b87207 47cbf4cc32db62f053c4cd04fc6ee39a0218139e Bisecting: 135 revisions left to test after this (roughly 7 steps) [ba327081d8bdc40b2b4843fd852680f2dabfdd70] memstick: fix a double-free bug in memstick_check testing commit ba327081d8bdc40b2b4843fd852680f2dabfdd70 with gcc (GCC) 8.1.0 kernel signature: 847b7bd8340a94b7af2c96357ebd332ce1033ad9532f7c968f9f8662e983518c all runs: OK # git bisect bad ba327081d8bdc40b2b4843fd852680f2dabfdd70 Bisecting: 67 revisions left to test after this (roughly 6 steps) [1857f945a250137d92e736a4c6b880c4a6234bd1] ARM: dts: sun8i: v3s: fix GIC node memory range testing commit 1857f945a250137d92e736a4c6b880c4a6234bd1 with gcc (GCC) 8.1.0 kernel signature: 0adeef3d90123fe4dfdd639404e54921fd119cffefde0b711a402faa306bf1da all runs: crashed: BUG: corrupted list in dquot_disable # git bisect good 1857f945a250137d92e736a4c6b880c4a6234bd1 Bisecting: 33 revisions left to test after this (roughly 5 steps) [3d0db14d7b9513a72567191feb33de7ee89b055b] x86/mm/ident_map: Check for errors from ident_pud_init() testing commit 3d0db14d7b9513a72567191feb33de7ee89b055b with gcc (GCC) 8.1.0 kernel signature: f36bab399e44c054992047c17af1ca972c7474ac5e6f24bca111776407c5c839 all runs: OK # git bisect bad 3d0db14d7b9513a72567191feb33de7ee89b055b Bisecting: 16 revisions left to test after this (roughly 4 steps) [0361d65da296e70d0b49b806f5540d3df71bdb6a] usb: chipidea: ci_hdrc_imx: Pass DISABLE_DEVICE_STREAMING flag to imx6ul testing commit 0361d65da296e70d0b49b806f5540d3df71bdb6a with gcc (GCC) 8.1.0 kernel signature: 486efc4987ae988c10779697972a1e928659ccf1eba2985395ecf5f50e3aa598 run #0: crashed: BUG: corrupted list in dquot_disable run #1: crashed: BUG: corrupted list in dquot_disable run #2: crashed: BUG: corrupted list in dquot_disable run #3: crashed: BUG: corrupted list in dqput run #4: crashed: BUG: corrupted list in dquot_disable run #5: crashed: BUG: corrupted list in dquot_disable run #6: crashed: BUG: corrupted list in dquot_disable run #7: crashed: BUG: corrupted list in dquot_disable run #8: crashed: BUG: corrupted list in dquot_disable run #9: crashed: BUG: corrupted list in dquot_disable # git bisect good 0361d65da296e70d0b49b806f5540d3df71bdb6a Bisecting: 8 revisions left to test after this (roughly 3 steps) [d770afcdf11b2ebcac54ab69f9423e8d2dc8c9ae] crypto: af_alg - avoid undefined behavior accessing salg_name testing commit d770afcdf11b2ebcac54ab69f9423e8d2dc8c9ae with gcc (GCC) 8.1.0 kernel signature: aaa2bfd256a796b8540d221ed6d58d7a8826c7b801809e5a4b748dbee90ab5a8 all runs: OK # git bisect bad d770afcdf11b2ebcac54ab69f9423e8d2dc8c9ae Bisecting: 3 revisions left to test after this (roughly 2 steps) [860efdef5d99d66dcb7749bf0ed2490a66322a3c] HID: i2c-hid: add Vero K147 to descriptor override testing commit 860efdef5d99d66dcb7749bf0ed2490a66322a3c with gcc (GCC) 8.1.0 kernel signature: 486efc4987ae988c10779697972a1e928659ccf1eba2985395ecf5f50e3aa598 run #0: crashed: BUG: corrupted list in dquot_disable run #1: crashed: BUG: corrupted list in dquot_disable run #2: crashed: BUG: corrupted list in dquot_disable run #3: crashed: BUG: corrupted list in dqput run #4: crashed: BUG: corrupted list in dquot_disable run #5: crashed: BUG: corrupted list in dquot_disable run #6: crashed: BUG: corrupted list in dquot_disable run #7: crashed: BUG: corrupted list in dquot_disable run #8: crashed: BUG: corrupted list in dquot_disable run #9: crashed: BUG: corrupted list in dquot_disable # git bisect good 860efdef5d99d66dcb7749bf0ed2490a66322a3c Bisecting: 1 revision left to test after this (roughly 1 step) [a9c625fcddc078624e1e7a673443b29c71be3431] quota: Sanity-check quota file headers on load testing commit a9c625fcddc078624e1e7a673443b29c71be3431 with gcc (GCC) 8.1.0 kernel signature: 7ddf51ae6b02fa1ff5891f97c5eff7d587ff4237d936fe8b2f3237627509f063 all runs: OK # git bisect bad a9c625fcddc078624e1e7a673443b29c71be3431 Bisecting: 0 revisions left to test after this (roughly 0 steps) [cf394db8b470c41589a7e8a2da0192b7a49c9cac] serial_core: Check for port state when tty is in error state testing commit cf394db8b470c41589a7e8a2da0192b7a49c9cac with gcc (GCC) 8.1.0 kernel signature: e1f5f6c968358fb359f88d97490670b538de12b130c5b52536367906600f2ba8 all runs: crashed: BUG: corrupted list in dquot_disable # git bisect good cf394db8b470c41589a7e8a2da0192b7a49c9cac a9c625fcddc078624e1e7a673443b29c71be3431 is the first bad commit commit a9c625fcddc078624e1e7a673443b29c71be3431 Author: Jan Kara Date: Mon Nov 2 16:16:29 2020 +0100 quota: Sanity-check quota file headers on load commit 11c514a99bb960941535134f0587102855e8ddee upstream. Perform basic sanity checks of quota headers to avoid kernel crashes on corrupted quota files. CC: stable@vger.kernel.org Reported-by: syzbot+f816042a7ae2225f25ba@syzkaller.appspotmail.com Reviewed-by: Andreas Dilger Signed-off-by: Jan Kara Signed-off-by: Greg Kroah-Hartman fs/quota/quota_v2.c | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) culprit signature: 7ddf51ae6b02fa1ff5891f97c5eff7d587ff4237d936fe8b2f3237627509f063 parent signature: e1f5f6c968358fb359f88d97490670b538de12b130c5b52536367906600f2ba8 revisions tested: 10, total time: 2h30m41.956179132s (build: 1h20m28.450576125s, test: 1h9m10.502635585s) first good commit: a9c625fcddc078624e1e7a673443b29c71be3431 quota: Sanity-check quota file headers on load recipients (to): ["adilger@dilger.ca" "gregkh@linuxfoundation.org" "jack@suse.cz"] recipients (cc): []